Lucene search
MitreCVE-2000-1173HistoryJan 09, 2001 - 5:00 a.m.
CVE-2000-1173
2001-01-0905:00:00
mitre
web.nvd.nist.gov
27
cyberpatrol
weak encryption
network traffic
cve-2000-1173
credit card security
nvd.
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.003
Percentile
71.6%
Microsys CyberPatrol uses weak encryption (trivial encoding) for credit card numbers and uses no encryption for the remainder of the information during registration, which could allow attackers to sniff network traffic and obtain this sensitive information.
Affected configurations
Node
microsyscyberpatrolMatch4.04.003
ORmicrosyscyberpatrolMatch4.04.005
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsys | cyberpatrol | 4.04.003 | cpe:2.3:a:microsys:cyberpatrol:4.04.003:*:*:*:*:*:*:* |
| microsys | cyberpatrol | 4.04.005 | cpe:2.3:a:microsys:cyberpatrol:4.04.005:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2000-1173
2001-01-09 05:00:00
exploitdb
exploitdb
Microsys CyberPatrol 4.0 4.003/4.0 4.005 - Insecure Registration
2000-11-22 00:00:00
cvelist
cvelist
CVE-2000-1173
2000-12-19 05:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.6
Confidence
Low
EPSS
0.003
Percentile
71.6%
Related for CVE-2000-1173